CVE-2015-5640
EPSS 0.44%baserCMS Access Control Bypass
Published: 5/13/2022Modified: 12/3/2024
Also known as:GHSA-v9gf-98vr-mgp2
Description
baserCMS before 3.0.8 allows remote authenticated users to modify arbitrary user settings via a crafted request.
Affected packages (1)
- Packagist/baserproject/basercmsfrom 0, < 3.0.8